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IN THE CLAIMS : 

Please find below a listing of all of the pending claims. The statuses of the claims are 
set forth in parentheses. Please amend the claims as follows: 

1 . (Currently Amended) A secure token for use with an encrypted file and an insecure 
decryption device, the secure token comprising a processor for protecting a first 
cryptographic key against unauthorized access, and creating a second cryptographic key from 
the first key and a message unique to the insecure device, the second key usable for file 
decryption by the insecure device , wherein, in a file transaction with a peer, the secure token 
is configured to create a third key unique to the peer and send the third key to the insecure 
device and the peer . 

2. (Original) The secure token of claim 1 wherein the secure token includes a smart card, 
the smart card including the processor. 

3. (Original) The secure token of claim 1 , wherein the processor uses a hash function to 
create the second key from the message and the first key. 

4. (Original) The secure token of claim 1, wherein the secure token performs an electronic 
transaction to obtain the first key. 
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5. (Original) The secure token of claim 4, wherein the secure token conducts a transaction 
with a server to purchase a desired file; and wherein the secure token receives the first key 
from the server. 

6. (Currently Amended) The secure token of claim 4, wherein the transaction is a 
transaction of the secure token conducts a transaction with a the peer to purchase a the file; 
and wherein the secure token receives the first key from the peer. 

7. (Currently Amended) The secure token of claim 4, wherein the transaction is a 
transaction of the secure token conducts a transaction with a the peer to sell a the file; and 
wherein the secure token sends the first key to the peer. 

8. (Canceled) 

9. (Original) The secure token of claim 1, further comprising means for receiving the first 
key and encrypted data, wherein the insecure device uses the second key to decrypt the 
encrypted data. 

10. (Original) The secure token of claim 1, wherein processing power of the secure token is 
significantly less than processing power of the insecure device. 

1 1 . (Currently Amended) An article for a secure device, the secure device including a 
processor, the secure device used in combination with an insecure device, the article 
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comprising memory encoded with data for instructing the processor to protect a first 
cryptographic key against unauthorized access, use a hash function to create a second 
cryptographic key from the first key and a message unique to the insecure device, and send 
the second key to the insecure device , wherein, in a file transaction with a peer, the processor 
is configured to create a third key unique to the peer and send the third key to the insecure 
device and the peer . 

12. (Original) The article of claim 1 1, wherein data further instructs the processor to 
perform an electronic transaction to obtain the first key. 

13. (Original) The article of claim 12, wherein the secure device conducts a transaction 
with a server to purchase a desired file; and wherein the secure device receives the first key 
from the server. 

14. (Currently Amended) The article of claim 1 3, wherein the transaction is a transaction of 
the secure device conducts a transaction with a the peer to purchase a file; and wherein the 
secure device receives the first key from the peer. 

15. (Currently Amended) The article of claim 1 3, wherein the transaction is a transaction of 
the secure device conducts a transaction with a the peer to sell a file; and wherein the secure 
device sends the first key to the peer. 
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1 6. (Currently Amended) The article of claim 1 5, wherein the data further instructs the 
processor to create a the third key that is unique to the peer, sends the third key to the 
insecure device and the peer . 

1 7. (Currently Amended) A data rights management server for use with a media transaction 
system, the server comprising a processing unit programmed to cause the server to establish a 
secure channel with a smart card, access a unique identifier corresponding to an insecure 
device, send a first cryptographic key to the smart card via the secure channel, receive a 
unique identifier from the insecure device, create a second key from the first key and the 
identifier^ encrypt a media file with the second key, and send the encrypted media file to the 
insecure device, the first key corresponding to the media file , wherein, in a transaction with a 
peer for the media file, the smart card is configured to create a third key unique to the peer 
and send the third key to the insecure device and the peer . 

18. (Original) The server of claim 17, wherein the smart card and the server perform an 
electronic transaction for the first key. 

19. (Currently Amended) A method of using an insecure decryption device for file 
distribution, the method comprising: 

accessing a message unique to the insecure device; 
accessing a first cryptographic key; 

creating a second cryptographic key from the message and the first key; and 



5 



PATENT Atty Docket No.: 200207237-1 

App. Ser.No.: 10/733,434 

allowing the insecure device to access the second key but not the first key; whereby 
the insecure device can use the second key for decryption; 

in a file transaction with a peer, creating a third key that is unique to the peer; and 
in the file transaction, sending the third key to the insecure device and the peer . 

20. (Original) The method of claim 19, wherein a hash function is used to create the second 
key from the message and the first key. 

2 1 . (Original) The method of claim 1 9, wherein accessing the first key includes performing 
an electronic transaction to obtain the first key. 

22. (Original) The method of claim 21, wherein the electronic transaction is conducted with 
a server to purchase a desired file; and accessing the first key includes receiving the first key 
from the server. 

23. (Currently Amended) The method of claim 21, wherein the electronic transaction is 
conducted with a the peer to purchase a file; and wherein accessing the first key includes 
receiving the first key from the peer. 

24. (Currently Amended) The method of claim 21, wherein the electronic transaction is 
conducted with a the peer to sell a file; the method further comprising sending the first key to 
the peer. 
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25. (Canceled) 

26. (Currently Amended) An insecure decryption device for use with a secure device and a 
first cryptographic key, the device comprising: 

means for sending a message to the secure device, the message being unique to the 
insecure device; 

means for receiving a second cryptographic key from the secure device, the second 
cryptographic key being derived from the message and the first cryptographic key; and 

means for performing decryption on a media file with the second cryptographic key; 

means for receiving a third cryptographic key derived from a message unique to a 
peer device, wherein the third cryptographic key is received by the peer device and used by 
the peer device for decryption; and 

means for encrypting the decrypted media file with the third cryptographic key . 

27. (Original) The device of claim 26, further comprising means for playing media 
decrypted with the second cryptographic key. 

28. (Currently Amended) A trusted system for file distribution, the system comprising: 

an insecure device; and 

a trusted secure device for storing a first cryptographic key, accessing a message from 
the insecure device wherein the message is unique to the insecure device, creating a second 
cryptographic key from the message and the first key, and allowing the insecure device to 
access the second key, the first key granting file access rights; 
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the insecure device not allowed to access the first key, the insecure device using the 
second key for decryption , wherein, in a file transaction with a peer, the trusted secure device 
is configured to create a third key unique to the peer and send the third key to the insecure 
device and the peer . 

29. (Canceled). 

30. (Original) The system of claim 28, wherein the secure device is a secure token. 

3 1 . (Original) The system of claim 30, wherein the secure token includes a smart card. 

32. (Original) The system of claim 31, wherein the insecure device includes a media player. 

33. (Original) The system of claim 28, wherein the secure device is configured to perform 
an electronic transaction to obtain the first key. 

34. (Original) The system of claim 28, wherein processing power of the secure device is 
significantly less than processing power of the insecure device. 

35. (Original) The system of claim 28, further comprising a peer-to-peer application for 
identifying peers having desired files. 
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36. (Currently Amended) A trusted media transaction system comprising 
an insecure media player device ; and 

a trusted secure token for performing an electronic transaction to obtain a first 
cryptographic key, accessing a message from the insecure device wherein the message is 
unique to the insecure device , creating a second cryptographic key from the message and the 
first key, and allowing the insecure device to access the second key, the first key granting 
media file access rights , wherein the message is unique to the insecure device and, in a file 
transaction with a peer, the trusted secure token is configured to create a third key unique to 
the peer and send the third key to the insecure device and the peer : 

the insecure device configured to use the second key for media file decryption. 
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